mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-30 18:20:53 +00:00
1.4 KiB
1.4 KiB
CVE-2022-0732
Description
The backend infrastructure shared by multiple mobile device monitoring services does not adequately authenticate or authorize API requests, creating an IDOR (Insecure Direct Object Reference) vulnerability.
POC
Reference
- https://techcrunch.com/2022/02/22/stalkerware-network-spilling-data/
- https://techcrunch.com/2022/02/22/stalkerware-network-spilling-data/
Github
No PoCs found on GitHub currently.